0day – Page 171 – :: Deepquest ::

>> [local] Motorola Device Manager 2.5.4 – 'ForwardDaemon.exe ' Unquoted Service Path

USER: deepcore // 2020-11-09 // 0 CMT

Motorola Device Manager 2.5.4 – ‘ForwardDaemon.exe ‘ Unquoted Service Path

>> [webapps] Genexis Platinum-4410 P4410-V2-1.28 – Broken Access Control and CSRF

USER: deepcore // 2020-11-09 // 0 CMT

Genexis Platinum-4410 P4410-V2-1.28 – Broken Access Control and CSRF

>> [local] KMSpico 17.1.0.0 – 'Service KMSELDI' Unquoted Service Path

USER: deepcore // 2020-11-09 // 0 CMT

KMSpico 17.1.0.0 – ‘Service KMSELDI’ Unquoted Service Path

>> [local] MEMU PLAY 3.7.0 – 'MEmusvc' Unquoted Service Path

USER: deepcore // 2020-11-09 // 0 CMT

MEMU PLAY 3.7.0 – ‘MEmusvc’ Unquoted Service Path

>> [webapps] CMSUno 1.6.2 – 'lang' Remote Code Execution (Authenticated)

USER: deepcore // 2020-11-06 // 0 CMT

CMSUno 1.6.2 – ‘lang’ Remote Code Execution (Authenticated)

>> [webapps] SmartBlog 2.0.1 – 'id_post' Blind SQL injection

USER: deepcore // 2020-11-06 // 0 CMT

SmartBlog 2.0.1 – ‘id_post’ Blind SQL injection

>> [webapps] Sentrifugo 3.2 – 'assets' Remote Code Execution (Authenticated)

USER: deepcore // 2020-11-06 // 0 CMT

Sentrifugo 3.2 – ‘assets’ Remote Code Execution (Authenticated)

>> [webapps] Sentrifugo Version 3.2 – 'announcements' Remote Code Execution (Authenticated)

USER: deepcore // 2020-11-06 // 0 CMT

Sentrifugo Version 3.2 – ‘announcements’ Remote Code Execution (Authenticated)

>> [webapps] BlogEngine 3.3.8 – 'Content' Stored XSS

USER: deepcore // 2020-11-06 // 0 CMT

BlogEngine 3.3.8 – ‘Content’ Stored XSS

>> [webapps] iDS6 DSSPro Digital Signage System 6.2 – Cross-Site Request Forgery (CSRF)

USER: deepcore // 2020-11-05 // 0 CMT

iDS6 DSSPro Digital Signage System 6.2 – Cross-Site Request Forgery (CSRF)